Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2017-1000600
HistorySep 06, 2018 - 12:29 p.m.

Input validation

2018-09-0612:29:00
PRIOn knowledge base
www.prio-n.com
3

8.9 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.6%

JSON

WordPress version <4.9 contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require additional plugins in order to be exploited however this has not been confirmed at this time. This issue appears to have been partially, but not completely fixed in WordPress 4.9

CPENameOperatorVersion
wordpresslt4.9

Related

nvd 2
osv 2
ubuntucve 2
cvelist 2
debiancve 2
cve 2
openvas 3
prion 1
nessus 1
nvd
nvd
CVE-2017-1000600
2018-09-06 12:29:00
CVE-2018-1000773
2018-09-06 16:29:05
osv
osv
CVE-2017-1000600
2018-09-06 12:29:00
CVE-2018-1000773
2018-09-06 16:29:05
ubuntucve
ubuntucve
CVE-2017-1000600
2018-09-06 00:00:00
CVE-2018-1000773
2018-09-06 00:00:00
cvelist
cvelist
CVE-2017-1000600
2018-09-06 12:00:00
CVE-2018-1000773
2018-09-06 16:00:00
debiancve
debiancve
CVE-2017-1000600
2018-09-06 12:29:00
CVE-2018-1000773
2018-09-06 16:29:00
cve
cve
CVE-2017-1000600
2018-09-06 12:29:00
CVE-2018-1000773
2018-09-06 16:29:05
openvas
openvas
WordPress < 4.9 Multiple Vulnerabilities
2021-03-17 00:00:00
WordPress <= 4.9.8 Multiple Vulnerabilities - Linux
2018-08-13 00:00:00
WordPress <= 4.9.8 Multiple Vulnerabilities - Windows
2018-08-13 00:00:00
prion
prion
Input validation
2018-09-06 16:29:00
nessus
nessus
WordPress < 4.9.9 Remote Code Execution Vulnerabilities
2019-05-30 00:00:00

8.9 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.6%

JSON
Related for PRION:CVE-2017-1000600
nvd2osv2ubuntucve2cvelist2debiancve2cve2openvas3prion1nessus1